Package: libextractor / 1:1.3-4+deb9u3

Metadata

Package Version Patches format
libextractor 1:1.3-4+deb9u3 3.0 (quilt)

Patch series

view the series file
Patch File delta Description
libgiflib5.1.patch | (download)

src/plugins/gif_extractor.c | 8 8 + 0 - 0 !
1 file changed, 8 insertions(+)

 
 update to new api in gif 5.1
ffmpeg2.9.patch | (download)

src/plugins/previewopus_extractor.c | 41 38 + 3 - 0 !
src/plugins/thumbnailffmpeg_extractor.c | 114 91 + 23 - 0 !
2 files changed, 129 insertions(+), 26 deletions(-)

 
 update to new api in ffmpeg 2.9, fix ftbs
CVE 2017 15266.patch | (download)

src/plugins/wav_extractor.c | 2 2 + 0 - 0 !
1 file changed, 2 insertions(+)

 
 cve-2017-15266

Bug-Upstream: http://lists.gnu.org/archive/html/bug-libextractor/2017-10/msg00002.html
Bug-Debian: https://bugs.debian.org/878314
CVE 2017 15267.patch | (download)

src/plugins/flac_extractor.c | 2 2 + 0 - 0 !
1 file changed, 2 insertions(+)

 
 cve-2017-15267

Bug-Upstream: http://lists.gnu.org/archive/html/bug-libextractor/2017-10/msg00003.html
Bug-Debian: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=878314
CVE 2017 15600.patch | (download)

src/plugins/nsf_extractor.c | 12 8 + 4 - 0 !
1 file changed, 8 insertions(+), 4 deletions(-)

 
 cve-2017-15600

Bug-Upstream: http://lists.gnu.org/archive/html/bug-libextractor/2017-10/msg00004.html
CVE 2017 15601.patch | (download)

src/plugins/png_extractor.c | 4 4 + 0 - 0 !
1 file changed, 4 insertions(+)

 
 cve-2017-15601

Bug-Upstream: http://lists.gnu.org/archive/html/bug-libextractor/2017-10/msg00006.html
CVE 2017 15602.patch | (download)

src/plugins/nsfe_extractor.c | 4 3 + 1 - 0 !
1 file changed, 3 insertions(+), 1 deletion(-)

 
 cve-2017-15602

Bug-Upstream: http://lists.gnu.org/archive/html/bug-libextractor/2017-10/msg00005.html
CVE 2017 15922.patch | (download)

src/plugins/dvi_extractor.c | 9 6 + 3 - 0 !
1 file changed, 6 insertions(+), 3 deletions(-)

 
 cve-2017-15922

Bug-Debian: https://bugs.debian.org/880016
Bug-Upstream: http://lists.gnu.org/archive/html/bug-libextractor/2017-10/msg00008.html
CVE 2017 17440.patch | (download)

src/plugins/gif_extractor.c | 2 2 + 0 - 0 !
src/plugins/it_extractor.c | 2 1 + 1 - 0 !
src/plugins/nsfe_extractor.c | 8 4 + 4 - 0 !
src/plugins/s3m_extractor.c | 2 1 + 1 - 0 !
src/plugins/sid_extractor.c | 2 1 + 1 - 0 !
src/plugins/xm_extractor.c | 2 1 + 1 - 0 !
6 files changed, 10 insertions(+), 8 deletions(-)

 
 cve-2017-17440

Bug-Debian: https://bugs.debian.org/883528
CVE 2018 14346.patch | (download)

src/common/unzip.c | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

 
 fix stack smashing (cve-2018-14346)
Bug-Debian: https://bugs.debian.org/904903
CVE 2018 14347.patch | (download)

src/plugins/mpeg_extractor.c | 90 75 + 15 - 0 !
1 file changed, 75 insertions(+), 15 deletions(-)

 
 fixing infinite loop (cve-2018-14347)
Bug-Debian: https://bugs.debian.org/904905
CVE 2018 16430.patch | (download)

src/common/unzip.c | 9 6 + 3 - 0 !
1 file changed, 6 insertions(+), 3 deletions(-)

 
 fix missing 0-terminator on corrupted zip files (cve-2018-16430).
CVE 2018 20430.patch | (download)

src/common/convert.c | 10 5 + 5 - 0 !
1 file changed, 5 insertions(+), 5 deletions(-)

 
 cve-2018-20430

Bug-Debian: https://bugs.debian.org/917214
CVE 2018 20431.patch | (download)

src/plugins/ole2_extractor.c | 9 7 + 2 - 0 !
1 file changed, 7 insertions(+), 2 deletions(-)

 
 cve-2018-20431

Bug-Debian: https://bugs.debian.org/917213